Known Vulnerabilities for products from Alcatel-lucent
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Alcatel-lucent".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Additional devices specifications by Alcatel-lucent can be found at device.report : Alcatel-lucent
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2016-9796 | Alcatel-Lucent OmniVista 8770 2.0 through 3.0 exposes different ORBs interfaces, which can be queried using the GIOP protocol... | 9.8 - CRITICAL | 2016-12-03 | 2017-09-03 |
| CVE-2015-8687 | Multiple cross-site scripting (XSS) vulnerabilities in the Management Console in Alcatel-Lucent Motive Home Device Manager (H... | 5.4 - MEDIUM | 2017-03-23 | 2017-03-28 |
| CVE-2015-6498 | Alcatel-Lucent Home Device Manager before 4.1.10, 4.2.x before 4.2.2 allows remote attackers to spoof and make calls as targe... | 7.5 - HIGH | 2017-08-09 | 2017-08-25 |
| CVE-2015-4587 | Cross-site scripting (XSS) vulnerability in the Alcatel-Lucent CellPipe 7130 router with firmware 1.0.0.20h.HOL allows remote... | 4.3 - MEDIUM | 2015-06-18 | 2016-12-07 |
| CVE-2015-4586 | Cross-site request forgery (CSRF) vulnerability in Alcatel-Lucent CellPipe 7130 RG 5Ae.M2013 HOL with firmware 1.0.0.20h.HOL ... | 6.8 - MEDIUM | 2015-06-23 | 2016-12-07 |
| CVE-2015-2805 | Cross-site request forgery (CSRF) vulnerability in sec/content/sec_asa_users_local_db_add.html in the management web interfac... | 6.8 - MEDIUM | 2015-06-16 | 2018-10-09 |
| CVE-2015-2804 | The management web interface in Alcatel-Lucent OmniSwitch 6450, 6250, 6850E, 9000E, 6400, and 6855 with firmware before 6.6.4... | 4.3 - MEDIUM | 2015-06-16 | 2018-10-09 |
| CVE-2013-4653 | Multiple cross-site scripting (XSS) vulnerabilities in the signin functionality of ics in MyTeamwork services in Alcatel-Luce... | 4.3 - MEDIUM | 2013-08-20 | 2017-08-29 |
| CVE-2011-0345 | Directory traversal vulnerability in the NMS server in Alcatel-Lucent OmniVista 4760 R5.1.06.03 and earlier allows remote att... | 3.3 - LOW | 2011-03-08 | 2018-10-10 |
| CVE-2011-0344 | Multiple stack-based buffer overflows in unspecified CGI programs in the Unified Maintenance Tool web interface in the embedd... | 5.8 - MEDIUM | 2011-03-08 | 2017-08-17 |
| CVE-2010-3281 | Stack-based buffer overflow in the HTTP proxy service in Alcatel-Lucent OmniVista 4760 server before R5.1.06.03.c_Patch3 allo... | 5.4 - MEDIUM | 2010-09-23 | 2017-08-17 |
| CVE-2010-3280 | The CCAgent option 9.0.8.4 and earlier in the management server (aka TSA) component in Alcatel-Lucent OmniTouch Contact Cente... | 6.9 - MEDIUM | 2010-09-23 | 2017-08-17 |
| CVE-2010-3279 | The default configuration of the CCAgent option before 9.0.8.4 in the management server (aka TSA) component in Alcatel-Lucent... | 7.6 - HIGH | 2010-09-23 | 2017-08-17 |
| CVE-2008-4383 | Stack-based buffer overflow in the Agranet-Emweb embedded management web server in Alcatel OmniSwitch OS7000, OS6600, OS6800,... | 10 - HIGH | 2008-10-03 | 2018-11-02 |
| CVE-2008-1331 | cgi-data/FastJSData.cgi in OmniPCX Office with Internet Access services OXO210 before 210/091.001, OXO600 before 610/014.001,... | 10 - HIGH | 2008-04-02 | 2019-08-14 |
| CVE-2007-5361 | The Communication Server in Alcatel-Lucent OmniPCX Enterprise 7.1 and earlier caches an IP address during a TFTP request from... | 8.5 - HIGH | 2007-11-20 | 2018-10-15 |
| CVE-2007-5190 | Multiple cross-site scripting (XSS) vulnerabilities in Alcatel OmniVista 4760 R4.2 and earlier allow remote attackers to inje... | 4.3 - MEDIUM | 2007-10-22 | 2018-10-15 |
| CVE-2007-3010 | masterCGI in the Unified Maintenance Tool in Alcatel OmniPCX Enterprise Communication Server R7.1 and earlier allows remote a... | 10 - HIGH | 2007-09-18 | 2018-10-16 |
| CVE-2007-2512 | Alcatel-Lucent IP-Touch Telephone running OmniPCX Enterprise 7.0 and later enables the mini switch by default, which allows a... | 7.5 - HIGH | 2007-06-07 | 2018-10-16 |
| CVE-2007-1822 | Alcatel-Lucent Lucent Technologies voice mail systems allow remote attackers to retrieve or remove messages, or reconfigure m... | 10 - HIGH | 2007-04-02 | 2008-11-13 |
Known software with vulnerabilities from Alcatel-lucent
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Alcatel-lucent | Home Device Manager | 4.1.9 |
| Application | Alcatel-lucent | Motive Home Device Manager | 4.1.10.5 |
| Hardware | Alcatel-lucent | Omniaccess Wireless | - |
| Application | Alcatel-lucent | Omnipcx | - |
| Application | Alcatel-lucent | Omnitouch 8400 Instant Communications Suite | 6.7.2 |
| Application | Alcatel-lucent | Omnitouch 8460 Advanced Communication Server | 9.0 |
| Application | Alcatel-lucent | Omnitouch 8660 My Teamwork | 6.6 |
| Application | Alcatel-lucent | Omnitouch 8670 Automated Delivery Message Delivery System | 6.6 |
| Application | Alcatel-lucent | Omnivista | - |
| Application | Alcatel-lucent | Voice Mail System | - |